$ rpki-client -vvf repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft File: 41820333252DF92B1DBA238F558CC8D822C768EF.mft (raw, json) Hash identifier: DvWEmZX6qprJ5sLjmnO7gca61UhOWklXPgP9BmOe7tY= Subject key identifier: D3:F6:F4:FE:FC:C6:C1:10:91:92:14:1A:32:12:D0:E5:BA:7F:80:E0 Authority key identifier: 41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF Certificate issuer: /CN=41820333252DF92B1DBA238F558CC8D822C768EF Certificate serial: 72A6BD48D21443AA4169002C66AE847629B37A11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft Manifest number: 01FA Signing time: Thu 26 Mar 2026 03:51:22 +0000 Manifest this update: Thu 26 Mar 2026 03:46:22 +0000 Manifest next update: Sun 29 Mar 2026 04:21:22 +0000 Files and hashes: 1: 3130332e36392e36302e302f32342d3234203d3e20313530353239.roa (hash: RVo6qspo0NsN9BxZrHPSAeKSfxIe7qLdXa5VG0+wvkA=) 2: 3130332e36392e36312e302f32342d3234203d3e20313530353239.roa (hash: uQsxGbefiEsVtpCcyhbMnpmwezO+DzoY1mF96tzo5Pg=) 3: 41820333252DF92B1DBA238F558CC8D822C768EF.crl (hash: Jx5fmWujS4BhhP97ltNE5A7/l3/y6R0gKjYn8F7LwFY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 04:21:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a6:bd:48:d2:14:43:aa:41:69:00:2c:66:ae:84:76:29:b3:7a:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41820333252DF92B1DBA238F558CC8D822C768EF Validity Not Before: Mar 26 03:46:22 2026 GMT Not After : Mar 29 04:21:22 2026 GMT Subject: CN=D3F6F4FEFCC6C1109192141A3212D0E5BA7F80E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f8:d1:a1:ef:59:c4:83:34:66:d3:40:d1:b8: 08:c8:20:0e:40:53:04:e3:f4:33:28:0e:22:8d:65: 92:2e:16:c5:d2:2e:bb:2f:43:e3:ba:f1:21:36:21: 1b:e8:20:f1:9a:f0:cd:01:74:3d:bf:cd:c9:bb:9c: 0e:34:25:b3:08:a5:6d:6d:ca:5f:a2:b1:33:54:45: e7:cf:0e:0e:44:f7:be:be:40:94:dc:75:e4:88:06: 35:b2:02:de:3e:dc:d0:fa:46:54:ec:97:38:3e:ae: 67:ea:eb:c4:3d:4f:b6:4c:b3:6c:a6:cf:e5:5a:ad: 99:e1:b6:eb:73:91:55:93:fe:45:8a:ab:b3:f0:fe: bc:2e:af:78:4d:e3:2d:25:43:43:a6:f1:07:87:0e: 21:ba:23:13:c0:e4:a3:f7:7b:d8:7d:46:79:89:12: c4:4d:57:fc:73:d4:a4:7b:6b:46:80:40:56:d1:6f: 3f:96:c1:16:e1:d7:02:a2:87:02:b2:d6:d3:8a:5b: a6:17:62:df:d1:32:be:f5:92:ed:42:2d:b9:b0:92: ab:0a:1b:dc:86:2c:49:6a:31:e8:23:41:78:e6:0a: 88:6e:ab:e0:5f:cc:51:d3:ec:23:95:50:10:71:08: 24:09:b7:f1:9b:ef:e2:46:28:62:c1:de:9e:6b:84: da:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:F6:F4:FE:FC:C6:C1:10:91:92:14:1A:32:12:D0:E5:BA:7F:80:E0 X509v3 Authority Key Identifier: keyid:41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:52:2d:e2:5e:e3:bf:96:17:50:19:16:cb:7a:3b:09:db:6a: b0:4b:f0:f3:31:60:98:30:c0:f8:86:85:ea:b7:d1:50:e9:f9: d8:70:ed:a9:cd:5b:3e:6d:e4:4b:aa:0e:11:80:b1:fa:dd:b4: 10:0a:c6:33:cf:77:91:ff:08:41:69:97:a3:a2:7c:50:be:88: 32:6c:2d:49:b1:2d:b5:6a:f2:bc:78:ad:2c:50:a9:06:ae:97: 32:3f:6c:53:a3:3e:99:38:16:c2:97:b7:11:ca:74:48:77:a3: f5:e9:e3:18:98:ee:09:27:76:aa:2f:f9:f0:85:94:78:34:4d: 1f:ff:84:15:af:fc:4c:a5:8f:05:21:2f:1d:0f:43:43:5e:7f: a8:05:fb:f9:f7:03:df:66:44:ea:ce:62:34:be:99:e8:c8:af: a8:c0:f5:04:11:ae:c3:72:26:57:b7:53:a9:4b:db:f9:cf:71: 54:73:d7:ce:48:2e:fa:23:30:04:12:04:ca:20:5b:b5:97:60: 96:04:5c:40:9b:65:9d:ad:db:f5:85:0b:31:40:13:2c:e9:7b: da:31:ca:3a:76:e4:5c:49:7a:37:cd:52:24:27:24:2d:90:5f: 6c:e6:c1:d5:f4:0d:72:c4:e1:1b:50:a1:8c:a6:56:8a:86:b0: 7f:eb:bf:a4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcqa9SNIUQ6pBaQAsZq6EdimzehEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgy MkM3NjhFRjAeFw0yNjAzMjYwMzQ2MjJaFw0yNjAzMjkwNDIxMjJaMDMxMTAvBgNV BAMTKEQzRjZGNEZFRkNDNkMxMTA5MTkyMTQxQTMyMTJEMEU1QkE3RjgwRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7+NGh71nEgzRm00DRuAjIIA5A UwTj9DMoDiKNZZIuFsXSLrsvQ+O68SE2IRvoIPGa8M0BdD2/zcm7nA40JbMIpW1t yl+isTNURefPDg5E976+QJTcdeSIBjWyAt4+3ND6RlTslzg+rmfq68Q9T7ZMs2ym z+VarZnhtutzkVWT/kWKq7Pw/rwur3hN4y0lQ0Om8QeHDiG6IxPA5KP3e9h9RnmJ EsRNV/xz1KR7a0aAQFbRbz+WwRbh1wKihwKy1tOKW6YXYt/RMr71ku1CLbmwkqsK G9yGLElqMegjQXjmCohuq+BfzFHT7COVUBBxCCQJt/Gb7+JGKGLB3p5rhNrpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0/b0/vzGwRCRkhQaMhLQ5bp/gOAwHwYDVR0j BBgwFoAUQYIDMyUt+SsduiOPVYzI2CLHaO8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NTk3MWFlOS01Y2RkLTRkNDEtYjYyYS01YzI4NGFhODA5OGUvMC80MTgyMDMzMzI1 MkRGOTJCMURCQTIzOEY1NThDQzhEODIyQzc2OEVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgyMkM3 NjhFRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODU5NzFhZTktNWNkZC00ZDQxLWI2 MmEtNWMyODRhYTgwOThlLzAvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4 RDgyMkM3NjhFRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAABSLeJe47+WF1AZFst6OwnbarBL8PMxYJgw wPiGheq30VDp+dhw7anNWz5t5EuqDhGAsfrdtBAKxjPPd5H/CEFpl6OifFC+iDJs LUmxLbVq8rx4rSxQqQaulzI/bFOjPpk4FsKXtxHKdEh3o/Xp4xiY7gkndqov+fCF lHg0TR//hBWv/EyljwUhLx0PQ0Nef6gF+/n3A99mROrOYjS+mejIr6jA9QQRrsNy Jle3U6lL2/nPcVRz185ILvojMAQSBMogW7WXYJYEXECbZZ2t2/WFCzFAEyzpe9ox yjp25FxJejfNUiQnJC2QX2zmwdX0DXLE4RtQoYymVoqGsH/rv6Q= -----END CERTIFICATE-----Generated at Thu Mar 26 18:18:47 2026 by rpki-client